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Variable Width Block Cipher 

This patent application is closely related to pending U.S. Patent Application serial 
numbers: 09/019,915 and 09/019,916., and issued U.S. Patent No. 5,717,760. 



FIELD OF THE INVENTION 



The present invention relates to apparatus and methods for encryption and 
decryption wherein a ciphertext is generated. More particularly, the present invention is 
related to the use of symmetric private key encryption. Once the sender and receiver 
have exchanged key information, encryption of a message by the sender and decryption 
by the receiver is accomplished in a direct manner. 



BACKGROUND OF THE INVENTION 



Dr. Man Young Rhee, in his book "Cryptography and Secure Communications" 
(McGraw-Hill, 1994) states on page 12: "A cryptosystem which can resist any 
cryptanalytic attack, no matter how much computation is allowed is said to be 
unconditionally secure. The one time pad is the only unconditionally secure cipher in use. 
One of the most remarkable ciphers is the one-time pad in which the ciphertext is the bit- 
by-bit modulo-2 sum of the plaintext and a nonrepeating keystream of the same length. 
However, the one-time pad is impractical for most applications because of the large size of 
the nonrepeating key." 

US Patent 4,751 ,733 entitled "SUBSTITUTION PERMUTATION ENCIPHERING 
DEVICE" describes in the abstract: "A substitution-permutation enciphering device. This 
device, adapted for transforming a binary word into another binary word, by succession of 
substitutions and permutations, under the control of a key ..." teaches away from the 
scheme described herein. The use of a substitution memory as described by US 
4,751 ,733 has a limitation in that this patent discloses and teaches changes only to the 
bits of a byte. 
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1 US Patent 5,001 ,753 entitled "CRYPTOGRAPHIC SYSTEM AND PROCESS AND 

2 ITS APPLICATION" describes the use of a rotational operator in an accumulator. The 

3 rotation operation is used to cause an accumulator bit to be temporarily stored in the carry 

4 bit, rather than in a memory location, and the carry bit (regardless of its value) is 

5 ultimately rotated back into its original position. The rotate operation is explained in detail 

6 by column 3 line 61 through column 4 line 6. Also described is the processing within a 

7 microprocessor using an eight bit (1 byte) accumulator. The 753 patent is limited to the 

8 rotate operation in conjunction with an accumulator. 

9 US Patent 5,1 13,444, entitled "RANDOM CODING CIPHER SYSTEM AND 

10 METHODS," and US Patent No. 5,307,41 2, teach the use of a thesaurus and/or synonyms 

1 1 together with arithmetic/logic operations to combine data and masks to accomplish 

12 encoding/decoding. These patents are thus limited by the use of the thesaurus and 

13 synonyms. 

14 US PATENT 5,41 2,729 entitled "DEVICE AND METHOD FOR DATA 

15 ENCRYPTION" introduces the concept of using matrix operations to multiplex the bytes in 

16 the cleartext so that a byte in the ciphertext may contain elements of more than one 

n cleartext bytes. The patent teaches about the multiple use of a data element to create a 

18 ciphertext element. This is different from the combination of: creating a single working 

19 element by concatenating several bytes together (with permutation of sequence during the 

20 concatenation), binary rotating the resultant single element, and the breaking up the 

21 single element back into multiple bytes to be placed in an output buffer (also with 

22 permutation of sequence). Under certain conditions, a matrix presentation may be used to 

23 represent the effect of the rotation operation. However, careful examination will show that 

24 the matrix representation of the rotation operation does not follow the rules associated 

25 with a linear system and thus is quite different from this patent. This patent method is 

26 limited by teaching the multiplexes several different data elements together wherein each 

27 element may be used more than once, while the scheme herein only modifies a single 

28 data element at any one time. 

29 US. PATENT 5,077,793 entitled "RESIDUE NUMBER ENCRYPTION AND 

30 DECRYPTION SYSTEM" teaches (column 3 lines 40 to column 4 lines 8): "If the moduli 
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1 are chosen to be mutually prime, then all integers with the range of zero to the product of 

2 the moduli minus one can be uniquely represented. The importance of the residue 

3 number system to numerical process is that the operations of addition, subtraction, and 

4 multiplication can be performed without the use of carry operations between the moduli. 

5 In other words, each digit in the n-tuple can be operated on independently and in parallel." 

6 And shows that for the sum Z of the digits X and Y, the ith digit may be given by: Zj=(Xj+yj) 

7 mod mi and that "a sixteen bit binary number can be represented in the residue number 

8 system using five moduli 5,7,1 1 ,13,17." The moduli (m*) are chosen to be relatively prime 

9 to each other. In Columns 5 and 6 the description goes on to define Z=(X+Y) mod M 

10 (where M is the product of all of the moduli, i.e., M=nrii x m 2 ... m n ,) as a generalization of 

1 1 the Vigenere cipher if Z=(X-Y) mod M is used to encrypt X using Y then X may be 

12 recovered from Z by X=(Y-Z) mod M, which is a generalization of the Beaufort cipher. 

n Pages 305 and 306 in "Applied Cryptography, Second Edition" by Bruce Schneier, 

14 John Wiley & Sons, Inc. 1996 - describe the Madryga encryption method. "The Madryga 

is consists of two nested cycles. The outer cycles repeats eight time (although this could be 

16 increased if security warrants) and consists of an application of the inner cycle to the 

n plaintext. The inner cycle transforms plaintext to ciphertext and repeats once for each 8- 

18 bit block (byte) of the plaintext. Thus the algorithm passes through the entire plaintext 

19 eight successive times. An iteration of the inner cycle operates on a 3-byte window of 

20 data, called the working frame [figure reference omitted]. This window advances 1 byte 

21 for each iteration. (The data are considered circular when dealing with the last 2 bytes.) 

22 The first 2 bytes of the working frame are together rotated a variable number of positions, 

23 while the last byte is XORed with some key bits. As the working frame advances, all bytes 

24 are successively rotated and XORed with key material. Successive rotations overlap the 

25 results of a previous XOR and rotation, and the data from the XOR is used to influence 

26 the rotation. This makes the entire process reversible. Because every byte of data 

27 influences the 2 bytes to its left and the 1 byte to its right, after eight passes every byte of 

28 the ciphertext is dependent upon 16 bytes to the left and 8 bytes to the right. When 

29 encrypting, each iteration of the inner cycle starts the working frame at the next-to-last 

30 byte of the plaintext and advances circularly through to the third-to-last byte of the 

31 plaintext. First, the entire key is XORed with a random constant and then rotated to the 
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1 left 3 bits. The low-order 3 bits of the low-order byte of the working frame are saved; they 

2 will control the rotation of the other 2 bytes. Then, the low-order byte of the working frame 

3 is XORed with the low-order byte of the key. Next, the concatenation of the 2 high-order 

4 bytes are rotated to the left the variable number of bits (0 to 7). Finally, the working frame 

5 is shifted to the right 1 byte and the whole process repeats." On page 306, "Both the key 

6 and the 2 ciphertext bytes are shifted to the right. And the XOR is done before the 

7 rotations." The Madryga method may be improved upon by a better randomizing of the 

8 order of the bytes prior to concatenation and by not storing the rotate distance information 

9 (even though it is encrypted) in the data itself. A weakness of this method is that the 

10 order of the bytes prior to concatenation is unmodified and therefore more easily broken. 

n US Patent 5,113,444, entitled "RANDOM CODING CIPHER SYSTEM AND 

12 METHODS" and US Patent NO. 5,307,412, teach the use of a thesaurus and/or synonyms 

13 together with arithmetic/logic operations to combine data and masks to accomplish 
H encoding/decoding. These patents are thus limited by the use of the thesaurus and 

15 synonyms. 

16 Pages 13 through 15 in "Applied Cryptography, Second Edition" by Bruce Schneier, 
n John Wiley & Sons, Inc. 1 996, provide a critique on the security inherent in the Vigenere 

18 encryption method. "The simple-XOR algorithm is really an embarrassment; it's nothing 

19 more than a Vigenere polyalphabetic cipher." "There is no real security here. This kind of 

20 encryption is trivial to break, even without computers. It will take only a few seconds with 

21 a computer. Assume the plaintext is English. Furthermore, assume the key length is any 

22 small number of bytes. Here's how to break it: 

23 1 . Discover the length of the key by a procedure known as counting coincidences. 

24 XOR the ciphertext against itself shifted various number of bytes, and count those bytes 

25 that are equal. If the displacement is a multiple of the key length, then something over 6 

26 percent of the bytes will be equal. If it is not, then less than 0.4 percent will be equal 

27 (assuming a random key encrypting normal ASCII text; other plaintext will have different 

28 numbers). This is called the index of coincidence. The smallest displacement that 

29 indicates a multiple of the key length is the length of the key. 
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1 2. Shift the ciphertext by that length and XOR it with itself. This removes the key and 

2 leaves you with the plaintext XORed with the plaintext shifted then length of the key. 

3 Since English has 1 .3 bits of real information per byte, there is plenty of redundancy for 

4 determining a unique decryption." 

5 The above method for breaking a Vigenere cipher relies on the fact that XOR (base 

6 2) is its own inverse and that the encrypting key (masking bytes) are repeated many 

7 times. The XOR is its own inverse because A XOR B XOR B = A. It is an object of the 

8 present invention to improve upon the security of the Vigenere and Variant Beaufort 

9 cipher methods by applying them not to characters directly but rather to digits 

10 representing that character in another number base. 

l i Pages 70 and 71 in "Cryptography: An Introduction to Computer Security" by 

12 Jennifer Seberry and Josef Pieprzyk, Prentice Hall, 1 989 - "The Vigenere cipher. The key 

n is specified by a sequence of letters: K=ki ... kd where ki, (/'=1 , ... ,d) gives the amount of 

14 shift in the Ah alphabet, that is: /j(a)=a + ki (mod n).° "Variant Beaufort cipher. Here we 

15 use: /i(a)=(a - ks) (mod n). Since a - kj = a + (n - kj) (mod n) the Variant Beaufort cipher is 

16 equivalent to the Vigenere cipher with the key character n - kj. The Variant Beaufort 

n cipher is, in fact, the inverse of the Vigenere cipher since if one is used to encipher the 

is other is used to decipher." 

19 Historically the Vigenere and Variant Beaufort ciphers have been applied to whole 

20 letters or characters. That is, the value (position in the alphabet) of a character has a 

21 number either added or subtracted to it (modulo the length of the alphabet) and the 

22 resultant number is used to specify a character position in the alphabet and the character 

23 at that position is sent as the ciphered character. 

24 Herein BCN refers to the binary to base n conversion of a number and the 

25 representation of the base n number as a digit shown in binary. A common example 

26 (base 1 0) is BCD (binary coded decimal) where the values 0 through 9 are represented by 

27 4 binary bits. 

28 Herein a byte is defined as two or more bits. In typical usage a byte is considered 

29 to be, but is not limited to, eight bits. 
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1 Herein, arrays (or masks) are described as being comprised of elements. Such 

2 elements are defined as any actual or logical grouping, for example: a bit, a nibble, a byte 

3 or word of any length. 

4 It is an object of the present invention to provide an encryption/decryption 

5 apparatus and method that does not depend upon the use of thesaurus's and/or 

6 synonyms tables. 

7 It is yet another object of the present invention to provide an encryption/decryption 

8 scheme wherein the presentation of a character in one number base is transformed into a 

9 corresponding representation in another number base. 

10 SUMMARY OF THE INVENTION 

i i The foregoing objects are met in an encryption/decryption apparatus where a 



12 message or information expressed as elements or characters is to be encrypted from 

13 transmission or sending to another where the message will be decrypted using variable 

14 width block encoding. A set of masks of elements or characters are defined and utilized in 

15 the encryption/decryption. The message elements and mask elements are used in a 

16 binary form or may be converted into corresponding elements in another new number 

n base system, where this new number base system is not binary. The converted message 

18 and mask elements are combined, element by element, respectively, thus forming a new 

19 set of elements which are defined as a ciphertext. This ciphertext may be sent or 

20 transformed into a set of elements in yet another number base that is suitable for 

21 transmission. 

22 The foregoing objects are met in an encryption apparatus and method providing 

23 masking arrays, a byte concatenator, a barrel shifter, a byte sequence shuffler and an 

24 optional decatenator which encrypt and decrypt input data. Encoding or Decoding will 

25 consist of one or more passes through a cleartext message using the encryption 

26 mechanism described herein. 

27 To decode the ciphertext, the same mask elements as used for encoding are 

28 combined, element by element, respectively using the inverse or reverse from that which 
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1 



3 



10 



11 



was used for encryption, thus forming a new set of elements which when converted to a 



2 number in the original message number base is the plaintext message. 



Herein XORn (X0R+ and XOR-) describes an exclusive-or operation (base 

4 N1 ) defined as: let the numbers A and B base N1 and A/2 respectively be defined (for m 

5 digits). 

7H-1 

m-l 



and 



B = J>2% Eq.2 



/=0 



8 Then, in a preferred embodiment, the elements A and B may be combined according to 

9 the following equations. 

m-l 

C = AXOR+ B = J] NV ((Nl + a t + b t ) mod Nl) Eq 3 



i=0 
7/1-1 



and C = AXOR- B = J] A7' ((W*N1 + a t - b t ) mod NT) Eq 4 

;=o 

12 where W is an integer large enough to keep the resultant sum a positive number. 

13 For base 2, XORn is identical to the standard XOR operation. The conversion of a binary 

14 number to j digits (base n) is done by the successive division of the number by n where 

15 the remainder of each division becomes the ith digit for i=0 to j-1 . The digits of a number 

16 (base n) are converted back to binary by: setting sum=0, then for i=j-1 to 0 perform 
n sum=(sum * n) + digits. When done the result is in sum. 

18 An advantage of the present invention is that an encryption method employing an 

19 XOR (base 2) is strengthened by the use of a base greater than 2. This is because A 

20 XORn B XORn B does not equal A (where XORn is either XOR+ or XOR- only). 

21 Another advantage of the present invention is that each byte to be encrypted and 

22 each masking byte (key byte) in a preferred embodiment are converted from binary into a 

23 string of digits or elements base n (n>2) and the operations of equation 1 and 2 are 
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1 applied to these digits in a systematic manner. One or two number bases, or moduli, is 

2 used at a time. 

3 In a preferred embodiment of the present invention the equations 3 and 4 are used 

4 to advantage since there is no repeating key (as a key is usually thought of) because the 

5 key is now the sequence of digits resulting from the conversion of binary masking bytes to 

6 digits of another number base. The masking byte string is now not limited to a few 

7 characters, but can be a very long series of bytes. Though it would still be possible to 

8 have a repeating series of digits if the masking bytes followed a repeating sequence, the 

9 ready availability of arbitrary masking bytes in the computer environment should lessen 
to this occurrence. These bytes may be derived from any of several digital sources 

n including, but not limited to, the sampling of digital sources, the application of numeric 

12 hashing functions, pseudo-random number generation and other numeric operations. 

n In a preferred embodiment the equation 3 is used for encryption and equation 4 is 

14 used for decryption. Since these are inverse ciphers, in another preferred embodiment 

15 equation 4 is used instead for encryption and equation 3 is used for decryption. For 

16 simplicity, only the first method is shown, but the implementation of the second scheme 

17 will be understood by anyone skilled in the art. 

18 Arbitrary and random numbers are created by normal digital processes. Most 

19 digitized music which comes on a CD-ROM is 16 bits of Stereo sampled at a 44.1 

20 kilohertz rate. This produces approximately 10.5 million bytes per minute. Of these about 

21 one half may be used as arbitrary data bytes, or about 5 million bytes per minute. 

22 Reasonably random data byte are generated by reading in the digital data stream which 

23 makes up the music and throwing away the top 8 bits and sampling only the lower eight 

24 bits of sound to produce an arbitrary or random number. Fourier analysis on the resultant 

25 byte stream shows no particular patterns. It should be kept in mind that silent passages 

26 are to be avoided. If taking every byte of music in order is undesirable, then using every 

27 nth byte should work quite well for small values of n between 1 1 and 17. Please note, the 

28 error correction inherent with a music CD-ROM is not perfect and the user might want to 

29 convert the CD-ROM music format to a WAVE (.WAV) file format and then send the 

30 WAVE (.WAV) file to someone by either modem, large capacity removable drive, digital 
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1 magnetic tape cartridge, or by making a digital CD-ROM containing the WAVE (.WAV) 

2 file. 

3 Another source of arbitrary or random digital numbers may be found in the pixel by 

4 pixel modification (exclusive-oring, adding, subtracting) of several pictures from a PHOTO 

5 CD-ROM, again looking at the low order bytes. Computer Zipped (.ZIP) files and other 

6 compressed file formats can be used. 

7 The variable width block encoder described herein may itself be used as a 

8 generator of arbitrary bytes to be use with additional copies of this scheme or in other 

9 encrypting schemes. 

10 The sender and receiver must agree ahead of ijmjyjn the sources to be used for 
n the masking bytes and how these sources will be sampled and/or combined to create the 

12 masking bytes to be used to encrypt and decrypt a message. 

13 In other preferred embodiments, the intelligent sampling of digital sources can be 



14 used to advantage to lessen the reconstruction of the byte stream used for encryption. In 

15 addition, encryption and hashing algorithms may be used to modify the digital sources 

16 prior to their use. Moreover, the modification of pseudo-random numbers for tables, 
n arrays and/or masks may also be used to advantage. 

18 Other objects, features and advantages will be apparent from the following detailed 

19 description of preferred embodiments thereof taken in conjunction with the accompanying 

20 drawing. 

21 BRIEF DESCRIPTION OF THE DRAWINGS 

22 Fig 1 . is a diagram of a Variable Width Block Cipher; 

23 Fig 1 A is a diagram showing the handling of intermediate results within the variable with 

24 block cipher; 

25 Fig. 2 are tables showing typical byte sources and addressing modes to be used for 

26 control and updating of masks, variable and counters; 

27 Fig. 3 is a table listing the typical masks, variable, counters, sources, and pointers 

28 needed to a processing pass with a Cipher Block encoder; 

29 Fig. 4 if a flow chart of the initialization procedure; 
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is the first part of a flow chart showing the processing of a data file; 
is the second part of the flow chart showing processing of a data file; 
is a flowchart of the Rotate/Shuffle operation; 
is a flowchart of the Shuffle operation; 
is a flowchart of a multibyte binary rotate operation; 
is a flowchart of the Arithmetic/Logic operations; 
is a flowchart of the updating of a masking Array; 

is a flowchart showing the updating of a pointer and the retrieval of a new value 

9 for a variable or counter; 

10 Fig. 1 1 A is a flowchart showing the retrieving of a value from a source and pointer; 

1 1 Fig. 12 is a diagram of a Variable Width Block Cipher with common masking arrays. 

12 DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS 

13 Data byte to be encrypted or decrypted are placed into an input I/O Buffer. Next a 

14 predetermined number of bytes are selected from the Input I/O Buffer with a permutation 

15 of sequence and concatenated together to form a single binary data element. This data 

16 element is modified by the scheme described herein and the resulting modified bytes are 
n placed either directly into an output I/O Buffer or placed into the output I/O Buffer using a 

18 second permuted sequence. The number of bytes , which are concatenated together to 

19 form successive input data elements may be fixed or varied during the processing of an 

20 I/O Buffer. The width of the Block Cipher is adjusted so as to match the number of input 

21 bytes used to create the input data element. All internal arrays or byte strings are ordered 

22 so that the first element is the least significant byte of a number. The size of the masking 

23 elements M(1 ) through M(3) may be fixed or varied during processing but the mask 

24 elements must be at least the size of the data element to be encoded. The number of 

25 bytes, W, or width of a processing operation may be determined by table lookup, a 

26 formula, pseudorandom number generation, or by some combination thereof. It is up to 

27 the implementor to decide how the width will be specified. The Rotate/Shuffle mechanism 

28 when used along with a varied number of bytes to be processed, helps obscure the 

29 underlying permutation sequence used to create the data element processed by the block 

30 cipher. 
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1 In another preferred embodiment, not shown, the Block Cipher is used as a 

2 pseudorandom byte generator where the bytes generated are used by another encryption 

3 scheme to encode data. The bytes for this other scheme may come from any of: the 

4 masking arrays, intermediate processing results, the output data element, or some 

5 combination thereof. 

6 ED is a global 1 bit flag, which specifies whether encryption (0) or decryption (1 ) is 

7 to be performed by the Block Cipher. ED is used as a flag to modify the Rotate/Shuffle 

8 and Arithmetic/Logic Operations. When ED=1 , the direction of rotation is the opposite of 

9 what is directed by the value of RV(i) and the inverse of the arithmetic/logic operation as 

10 designated by AV(i) is used. Similarly, when ED=1 , a inverse shuffle sequence is utilized 
n as compared to when ED=0. 

12 FIG 1 . shows a diagram of a variable width block cipher mechanism. For simplicity 

13 of the drawing, the two separate items, W and ED are shown together as item 10, but are 

14 individual items. W represents the Width or number of bytes to be contained in the input 
is and output data element while ED is the encryption/decryption flag. The following tables 
16 shows the effects of the value of ED of the operation of the Block Cipher. 



CONTROL INPUTS 
FOR 


ED=0 


ED=1 


Rotator/Shuffler #1 


ENB1, RV(1), RSF(1), RSN(1) 


ENB1, RV(1), RSF(1), RSN(1) 


A/L Modifier #1 


AV(1), M(1), AMP(1), AVDN(1), 
AVMN(1) 


AV(3), M(3), AMP(3), AVDN(3), 
AVMN(3) 


Rotator/Shuffler #2 


RV(2), RSF(2), RSN(2) 


RV(3), RSF(3), RSN(3) 


A/L Modifier #2 


AV(2), M(2), AMP(2), AVDN(2), 
AVMN(2) 


AV(2), M(2), AMP(2), AVDN(2), 
AVMN(2) 


Rotator/Shuffler #3 


RV(3), RSF(3), RSN(3) 


RV(2), RSF(2), RSN(2) 


A/L Modifier #3 


AV(3), M(3), AMP(3), AVDN(3), 
AVMN(3) 


AV(1), M(1), AMP(1), AVDN(1), 
AVMN(1) 


Rotator/Shuffler #4 


NOT(ENB1). RV(1), RSF(1), RSN(1) 


NOT(ENB1), RV(1), RSF(1), RSN(1) 
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i The effect of the value of AV(1 to 3) when sent to the appropriate A/L Modifier: 



AV value 


Operation Performed, ED=0 


Operation Performed, ED=1 


0 


Input XOR Mask M 


Input XOR Mask M 


1 


Input ADD Mask M 


Input SUB MaskM 


2 


Input SUB Mask M 


Input ADD Mask M 


3 


Input XOR Mask M 


Input XOR Mask M 


4 


Input XOR- MaskM 


Input XOR+ MaskM 


5 


input XOR+ Mask M 


Input XOR- MaskM 


6 


Input XOR- Mask M 


Input XOR+ MaskM 


7 


Input XOR+ MaskM 


Input XOR- MaskM 



2 When AV(i) >=4 then XOR- or XOR+jpoerations are performed. These consist of 

3 converting the input data element into digits using number base AVDN(i) and Eq. 1 , and 

4 also converting the mask element M(i) into digits using number base AVDM(i) and Eq. 2. 

5 These digits are then combined using Eq. 3 or Eq. 4. and the resulting digits are 

6 recombined using number base AVDN(i) into a binary number which is the output of the 

7 A/L modifier. Mask M(i) is considered to be the lowest W bytes of M(i). 

8 RSF(i) is the Rotate/Shuffle Flag and is used to designate whether a Rotate or 

9 Shuffle operation will occur and whether the input will be treated as binary bits or as digits 

10 (base RSD(i) using Eq. 1 ). Again, when ED=1 , the direction for rotate operation is 

1 1 reversed and the inverse of the shuffle operation is specified. 



RSF(i) value 


Resulting DPF value and operation 


Rotate or Shuffle 


0 


0 = Binary 


Rotate 


1 


0 = Binary 


Shuffle 


2 


1= Digits 


Rotate 


3 


1= Digits 


Shuffle 



12 Normally ENB1 equals NOT(ED). Therefore NOT(ENB1) equals ED. Another 

n implementation, not shown, has the binary ENB1 flag being set by an exterior user 

14 settable binary flag. 

15 The size in bytes of the single data element to be encrypted or decrypted, DATAin 

16 1 , is designate by W. W and ED, 6, together go to all of the Rotate/shufflers and the A/L 

17 Modifiers to designate the number of bytes to be processed and whether encryption 
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1 (ED=0) or decryption (ED=1 ) will occur. This data element, DATAin 1 , is created by 

2 selecting bytes from the input I/O buffer and concatenating them together to form a single 

3 multibyte wide data element or item. DATAin, 1 , is sent via 2 to Rotate/Shuffler #1 , 5, 

4 where the W, 6, bytes of the data item are either rotated or shuffled as directed by ENB1 , 

5 27, [RV(1 ), RSF(1 ) and RSN(1 )], 8. When ED=0 and ENB1 =1 , the Rotate/Shuffle 

6 operation is enabled. When ED=1 , ENB1 =0 and the Rotate/Shuffle #1 operation is 

7 disabled and the W bytes of the data item pass through unmodified to both IR#1 , 10, and 

8 A/L Modifier #1, 11, via 44. At A/L Modifier #1 , 1 1 , the directions for the modification of 

9 the data item are given by [AV(1), M(1), AMP(1), AVDN(1), AVMN(1)], 12, via 46 if ED=0 

10 or by [AV(3), M(3), AMP(3), AVDN(3), AVMN(3)], 1 3, via 47 if ED=1 . The modified data 

n item4ft®a goes to both IR#2, 15, and Rotator/Shuffler #2, 16, via 48. The second . ^ 

12 Rotate/Shuffler #2, 16, is always enabled. When ED=0, [RV(2), RSF(2), RSN(2)], 17 via 

13 51 control the operation if 1 6 else when ED=1 , [RV(3), RSF(3), RSN(3)], 1 8, via 52 

14 provide the control information concerning how the modified data item is further changed. 

15 The data item modified by A/L Modifier #2, 21 , goes via 60 to IR#4, 24, and 

16 Rotate/Shuffler #3, 25. This rotate/shuffler is always enabled. The data item is further 

17 modified by Rotate/Shuffler #3, 25 under the control of [ED, W], 6 via 61 , and [RV(3), 

18 RSF(3), RSN(3)], 1 8 via 65, when ED=0 or [RV(2), RSF(2), RSN(2)], 17 via 64, when 

19 ED=1 . The modified data item then goes via 66 to IR#5, 29, and A/L Modifier #3, 30. 

20 Here the data item is again modified under the direction and control of [AV(3), M(3), 

21 AMP(3), AVDN(3), AVMN(3)], 13 via 65, if ED=0, else when ED=1 then [AV(1), M(1), 

22 AMP(1 ), AVDN(1 ), AVMN(1 )], 12 via 67, controls the modification. The resulting modified 

23 data item then goes via 71 to IR#6, 34, and Rotate/Shuffler #4, 35. If ED=0 then 

24 NOT(ENB1 ) is 0 and the rotate/shuffle operation is disabled and the data item on 71 goes 

25 unmodified via 3 to DATAout, 4. When ED=1 , then NOT(ENB1 )=1 and the data item is 

26 modified under the direction and control of [RV1 , RSF(1 ), RSN1 )], 8 via 72, and [ED, W], 

27 6 via 42. 

28 FIG 1 A is a continuation diagram of FIG. 1 . Here the intermediate Results IR#1 

29 through IR#6 are directed to the temp outputs Z(1 ) through Z(6). The table below shows 

30 how the mux, 54, is controlled by the value of ED, 6 via 7. 
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1 



Z(\) 


ED=0 


ED=1 


TlVi 85 


IR#1 10 via 73 


IR#6, 34, via 74 


7i7\ 86 


IR#2 15 via 75 


IR#5, 29 via 76 


Z(3), 87 


IR#3, 20 via 77 


IR#4, 24 via 78 


Z(4), 88 


IR#4, 24 via 79 


IR#3, 20 via 80 


Z(5), 89 


IR#5, 29 via 81 


IR#2, 15 via 82 


Z(6), 90 


IR#6, 34 via 83 


IR#1, 10 via 84 



2 As can be seen by inspection of the above table, the effect of ED=1 is to reverse the order 

3 of Intermediate Results being directed to the temp values Z. Thus when the Z's are used 

4 to calculate formulas for updating a variable, mask, counter or pointer the results will be 

5 the same for both encryption (ED=0) and decrypff^FffcD=1 ). 

6 Fig 2. shows the elements of a source pointer, pointer addressing modes and 

7 details for byte sources. If the six Z values are considered to be vectors A and B (each of 

8 three components) such that Ai=Z(1 ), A 2 =Z(2), A3=Z(3), B 1 =Z(4), B 2 =Z(5) and B 3 =Z(6), 

9 then the cross products of A and B are: 

10 Eq. 3 C(1)=A 2 *B3-B 2 *A3 = Z(2)*Z(6)-Z(5)*Z(3) 

1 1 Eq. 4. C(2) = Aa'B! - B z *Ai = Z(3)*Z(4) - Z(6)*Z(1 ) 

12 Eq. 5 C(3) = A/B2 - B-i*A 2 = Z(1 )*Z(5) - Z(4)*Z(2) 

13 The calculations for CD(1 ) through CD(6) are similar to the above but user supplied 

14 values for D 1( D 2 and D 3 are substituted as indicated in the calculation of a cross product. 

15 Only the Lowest W bytes of M(1 ), M(2) and M(3) are used to modify a data item. While 

16 any of the bytes contained within these arrays may be used to update a variable, counter 
n or pointer. To save time, only those sources or calculations required to update a variable, 

18 counter, etc. are performed as needed. An enabled source has an entry in the Source 

19 Dispatch Table, SDT. 

20 Each variable and counter has a pointer associated with it to specify how the 

21 counter and variable is updated. The pointer consists of several fields. The first field is a 

22 Change Enable flag field. When set to 0, no changes are allowed in the address pointer's 

23 other two fields. Otherwise when set to 1 , the other three fields may be changed when a 

24 master counter (see FIG 3) counts down to zero. The other three fields are Address 
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1 Mode, Pointer Value (NP or P) and Relative Source Number (RN).. There are four 

2 address modes which a pointer may utilize. They are Fixed, Jump, Local and General 

3 modes. In Fixed mode, the byte source and pointer values are constant. In Jump mode, 

4 both the source and pointer values are updated using retrieved or computed values. In 

5 Local mode the source is held constant, and the pointer is incremented and is reset to the 

6 beginning of a source when the end of a source is reached. In General mode, when the 

7 pointer reaches the end of a source, the pointer is reset to the beginning and the next 

8 eentry in the SDT is used. The third field is a byte pointer, relative to the start of the 

9 source, where bytes will be retrieved for updating a variable or counter. The fourth field is 

10 the Relative source Number, RN, which is used as an index into the Source Dispatch 
n Table, SDT. On!y4fe@®-*sources which have an entry into the SDT are updated. If a 

12 source has more than one entry in the SDT, it is updated only once. A source needing 

13 updating will have it's Cflag set equal to 1 . And once the byte source has been updated 

14 the Cflag entry for that source is cleared to prevent a recalculation of the source if multiple 

15 SN entries exist within the SDT. 

16 When a Master Counter is decremented to zero, the counter value is reset using its 
n pointer and all other variables and counters are updated. Where the Change Enable 

18 Flag allows it a pointer value is also updated and byte sources are enabled or disabled 

19 depending upon the bit patterns of other bits retrieved using the master pointer. A Master 

20 Counter is provided for each processing pass to provide another degree of randomness to 

21 the encryption, decryption operation. 

22 When a Byte Source is enabled, it's Source Number, SN, is entered in the Source 

23 Dispatch Table and TNES is changed to reflect the number of SN entries in the table. 

24 When a Source is disabled, its SN value is removed from the dispatch table, the table is 

25 compressed and the value of TNES is adjusted to reflect the number of entries currently in 

26 the table. Cflag is a binary flag set non zero when a byte source needs to be computed. 

27 FIG. 3 is a listing of Variables , Counters and Pointers which are associated with a 

28 processing pass through data in an I/O Buffer. 

29 FIG. 4 is a flowchart for initializing the scheme for either encryption or decryption. 

30 This initialization is based upon the assumption that the scheme will be used to create all 
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1 of the needed control variables, counters, sources and pointers. Otherwise, the needed 

2 variables, counters, sources and pointers can be built directly by sampling a repeatable 

3 digital source or through the use or any combination of sampling and or computation. But 

4 for this illustration, it will be assumed that the scheme described herein will be used. 

5 Initially, at step 4-1 , the user specifies the initial width, W, of the cipher block in bytes, the 

6 number of processing passes to be initialized and an initial password which consists of W 

7 bytes which will be used to form the data item DATAout. Next the masking arrays M(1 ) , 

8 M(2) and M(3) are created from sampled sources. At step 4-2, and all counters will be set 

9 equal to 1 for the required number of processing passes, and sources, pointers and 

10 addressing modes are assigned for all variables and counters. In addition, all required 

1 1 sources have their Relative Source Number, RN, entered into th&S«#Ge Dispatch Table 

12 along with the corresponding Byte Source Number, SN (see figure 2). Step 4-3 consists 

13 of scanning the SDT entries to determine which sources will be needed to initialized for 

14 each processing pass. And at Step 4-4, The user sets ED=0 or 1 (this is independent of 

15 whether the scheme will be encrypting or decrypting). Next DATAin is set equal to the 

16 password in DATAout. One iteration of processing with the cipher block is performed. 

n Next all required byte source values are computed and since all counters were set equal 

18 to 1 then the counters all are decremented to zero and the process then updates all 

19 variables, counters and pointers from the computed byte sources. This process is 

20 repeated for all processing passes requiring initialization. 

21 FIG. 5 and FIG. 5A are flowcharts of the steps for processing a data file. Starting 

22 at Step 1 on FIG 5., NTTP is set equal to Passes, the number of processing passes to be 

23 performed. When ED=0, the starting pass number STRT is set equal to 1 , the 

24 incrementing value INCR is set equal to 1 and the ending pass number END is set equal 

25 to PASSES. Thus for each I/O Buffers worth of data bytes, the passes will be sequentially 

26 accessed from 1 to PASSES. When ED=1 , the starting pass number is PASSES, the 

27 incrementing value is -1 and the end pass number is 1 enabling the passes to be counted 

28 backwards from PASSES to 1 . At step 5-2 the input I/O buffer is filled with data bytes and 

29 the counter, CNTR, is set equal to 1 and the variable P is set equal to STRT. P is used to 

30 designate which pass number is being processed. At step 5-3 for pass P, all previously 

31 saved masks, variable, counters, pointers, etc. are restored and the counter K is set equal 
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1 to the number of bytes in the Input I/O Buffer. At step 5-4, W is set equal to the number of 

2 bytes to be presented to the cipher block. At step 5-5, if K>0 is true, then there are more 

3 bytes to be processed for this I/O buffer and we proceed to step 5-6, otherwise if K<=0, 

4 the next step is 5-1 2 which goes to FIG 5A step 1 . Assuming that the I/O buffer has not 

5 been completely process, hence K>0 is ture, then at step 5-6 we test to see if there are at 

6 least W bytes left in the buffer. If K>W is true, we proceed directly to step 5-8 else if W 

7 <=K, then we proceed to step 5-7 where W is set equal to K (the number of bytes left) and 

8 then we proceed to step 5-8 . At step 5-8 the W bytes from the Input I/O buffer are 

9 concatenated to form a single W byte width DATAin element, all source flags are cleared, 

10 indicated that no source values need to be computed and then we proceed to step 5-9. At 

1 1 step 5-9 the W bytes in the DATAin -sJswent are processed, all counters are decremented 

12 and if any counters equal zero, the sources associated with the counter and it's variable 

13 will have the Cflag entry flag set indicating that the source needs to be computed. At the 

14 end of decrementing the counters. All required byte sources which have their Cflag set 

15 are computed and the counters are reset to a non zero value and the associated variables 

16 or mask are updated. The next step is 5-1 0 where the W bytes in DATAout element are 
n either directly written to the Output I/O Buffer or decatenated and put into the Output I/O 
is buffer in a permuted manner. From step 5-1 0, then next step is 5-1 1 where K is 

19 incremented by W (K equal the number of bytes processed so far) and then the scheme 

20 loops back to step 5-4 to continue the process. From before, when all the bytes in the I/O 

2 1 buffer have been processed we go via step 5-1 2 to step 5A-1 then to step 5A-2. At step 

22 5A-2 all masks, variables, counters and pointers are saved. We then proceed to the next 

23 step 5A-3 where P is incremented by INCR (the pass number is either incremented or 

24 decremented by 1 ) whereupon P then represents the pass number for the next pass to be 

25 processed. Also CNTR is incremented by 1 . CNTR is used as a loop counter. From step 

26 5A-3 the scheme proceeds to step 5A-4 where CNTR is compared to NTTP (Number of 

27 Times To Process), if CNTR > NTTP is true, then the buffer has been completely 

28 processed and we proceed to step 5A-7 where the contents of the Output I/O Buffer is 

29 written out. At step 5A-4, if CNTR is not greater than NTTP, then we go to step 5A-5. At 

30 step 5A-5, the designations for the Input and Output I/O Buffers are exchanged. From 
3 i step 5A-5 we proceed to step 5A-6 which goes to M C" on FIG 5, and thus to step 5-3 
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1 where another processing pass is initialized. Going back to step Fig 5A-7, when the data 

2 has been written out we go to step 5A-8 to see if there is any more data to be processed. 

3 If not, then the processing sequence ends at step 5A-1 0, other wise 5A-8 goes to 5A-9 

4 which goes back to "B" on FIG 5. and thus to step Fig 5-2 to initialize the processing of a 

5 new buffer of data to be processed. 

6 FIG 6. is a flowchart of the Rotate/Shuffle operation. X is an array or string of input 

7 bytes, while Y will contain an array or string of output bytes at the end of the procedure. V 

8 is an array of arbitrary bytes, ED is the Encrypt/Decrypt flag and has a value of 0 or 1 , RD 

9 is a signed number representing the number of bits to be rotated (a positive number is left, 

10 while a minus number is right). ENB is a binary flag, 0=disable and 1=enabled, used to 
n^^sable or enable the Rotate/Shuffle operation. When ENB=0, the W bytes fromTare" 
12 copied unchanged to Y. When ENB=1 , either the Rotate or Shuffle operation is 

o performed. Offl and off2 are two byte arbitrary values used to modify the computations 

14 for shuffling the sequence of bytes. TEMP array is a temporary array of bytes, used to 

15 hold digits for a shuffle sequence using digits instead of whole bytes. RSN(i) is the 

16 number base to be used if the W bytes are to be converted to digits before shuffling. The 
n value of RSN(i) should divide into (W times the bit width of the bytes) without remainder 

18 so as to prevent overflow when reconverting back to binary values. 

19 From Step 6-1 we proceed to step 6-2 where the ENB binary flag is checked. If 

20 ENB=0 then the Rotate/Shuffle operation is disabled and the W bytes in X are copied, at 

21 step 6-3, unmodified to Y. On the completion of the copying, the process proceeds to 

22 step 6-1 0 to exit. Now when ENB=1 , the next step is 6-4, where DPF is computed. DPF 

23 (Digit Process Flag) = (RSF(i) AND 2) and is either 0 or 2 in value. The next step, 6-5, 

24 tests the least significant bit of RSF(i). If (RSF(i) AND 1 )=0 then the operation to be 

25 performed will be ROTATION otherwise a SHUFFLE operation will be performed. If the 

26 result of the test at step 6-5 is true, we proceed to step 6-6 (rotation) and test the value of 

27 DPF. At 6-6 if DPF=0 is false then we go to step 6-9 (for rotating digits) otherwise the 

28 step executed after 6-6 is step 6-7 where WRD is set equal to the value of RD. WRD is 

29 the Working RD value. From step 6-7 the next step is 6-8 where a new value of Y is 

30 created by rotating the W bytes of X, WRD bits. If at step 6-6 DPF was not 0, then at step 

31 6-9 WRD is computed to be the number of bits needed to rotate whole digits. The integer 
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1 part of RD/BPD where BPD is the number of Bits Per Digit represent the number of digits 

2 which can be rotated based upon the value of RD. Next the integer is multiplied by BPD 

3 to create a rotate distance which is now an integer number of digits in value. Then this 

4 computed WRD value is used at step 6-8 to rotate the W bytes in X to form a new value 

5 for Y. If at step 6-5 the answer was false then step 6-11 is executed next. Here DPF is 

6 checked to see if it is equal to 0. If DFP=0 is true then whole bytes are shuffled and step 

7 6-1 2 is executed next. And from step 6-1 2 the sequence ends at step 6-1 0. However if At 

8 step 6-1 1 DPF=0 is false, the step 6-1 3 is the next one in sequence. Here the W Bytes 

9 from X are converted to digits, base RSN(i). This is accomplished by repeated division of 

10 X by RSN(i) and using the remainders as digits which are then stored in the TEMP array. 

1 1 The total number of TEMP array entries used, is savs&n T which is then used at step 6- 

12 14 in the shuffle operation. If RSN(i) is a power of 2 in value, then the number of bits 
n represented by BPD=RSN(i))/ln(2) is effectively shifted out of X to form the entries in 

14 Temp Array. One X is converted to T digits at step 6-1 3, the T bytes in the Temp Array, 

15 containing these T digits, are shuffled at step 6-1 4. Then these T digits contained in the 

16 Temp Array are converted back into an array of bytes or a string Y at step 6-1 5. This 

n conversion is accomplished by either shifting the BPD bits from each TEMP Array entry to 

18 form Y or by sequentially multiplying and adding. This latter method sets Y=0, initially, 

19 then repeatedly multiplying Y by RSN(i) and adding a digit from Temp Array to Y in 

20 sequence (starting from the most significant digit). When completed, Y contains W bytes 

21 which have been shuffled in BPD units. From step 6-1 5, step 6-1 0 is executed to exit. 

22 FIG. 7 is a flowchart of the shuffle operation. X is an array or string containing 

23 bytes to be shuffled, while Y is the resulting string or array containing the results of the 

24 shuffle operation and V is an array or string of arbitrary bytes. W designates the number 

25 of bytes to be shuffled. The local array DP (W bytes long) is initialized to all O's. If the 

26 scheme is modified to allow index value of 0 then DP should be initialized to -1 or some 

27 unused index value. From step 7-1 the procedure goes to step 7-2 where the variable i=1 

28 is initialized (as a local counter). Offsets off1 and off2 are arbitrary bytes used to provide 

29 additional degrees of variability to the process. At step 7-3 the variable J is computed. 

30 J=((v(i) Mod W)+ off1 ) MOD W)+1 computes a pointer or index (counting from 1 to W). At 

31 step 7-4 the value of DP(J) is checked to see if it is equal to 0. If DPG)=0 then the Jth 
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1 entry of DP has not been previously used so it can contain a shuffled index value. 

2 Assuming DP(J)=0 we then go to step 7-5 where a new index value for DP(J) is computed, 

3 DP(J)=(i+off2) MOD W)+1 . Next at step 7-6 the value of ED is checked. If ED=0, we go 

4 to step 7-7 where (encrypting) the Y(DP(j))=x(i), otherwise if ED=1 , we proceed to step 7-8 

5 where Y(i)=X(DP(J)). Next at step 7-9, the variable i is incremented then at step 7-10, i is 

6 compared to W. If i is greater than W the operation is done and we proceed to step 7-1 1 

7 to exit. However, if at step 7-10, i is less than or equal to W we proceed back to step 7-3 

8 to continue the process. If at step 7-4, the value of DP(J) is not 0, indicating that it has 

9 already been used, we then go to step 7-1 2, there LC is set equal to 1 . LC is used as a 

10 local counter value. From Step 7-12 we proceed to step 7-13 where K is computed, such 

1 1 that K=(((J+lfe> MOD W)+off 1 ) MOD W)+1 . Next at step 7-1 4, LC is incremented by 1 .» 

12 under the assumption that it may be needed again, and then at step 7-15 the value of 

n DP(k) is tested. At 7-1 5 if DP(K)=0 is false indicating that the slot DP(K) has again been 

14 used, we go back to step 7-1 3 and again compute a new value of K. When at step 7-1 5, 

15 DP(K)=0 is true, indicating, an unused index value, we proceed to step 7-16 and compute 

16 a new value for DP(K). At step 7-16, the new value for DP(K)=((i+off2) MOD W)+1 is 
n computed. Then from either step 7-1 6 we proceed back to step 7-6. 

18 FIG. 8 is a flowchart of a multibyte binary rotate operation. This flowchart is based 

19 upon the assumption that a byte is made up of 8 bits. Other bits widths may be used with 

20 the appropriate changing of some constants. At step 8-1 , X is an input array or string, Y 

21 contains the resulting output string or array, both W bytes in size. RD is a variable 

22 indicating the bit distance to be rotated, if RD < 0 (right rotate) then Direct=1 else RD >0, 

23 (left rotate) then Direct=0. ED is a 1 bit binary flag indicating whether encryption, ED=0, 

24 or decryption will occur. ENB is a 1 bit flag indicating whether the rotate operation is 

25 enabled. When disabled, the resultant Y string or array is equal to the initial X string or 

26 array. Direct is a 1 bit flag equal to the direction to be rotated, if Direct=0 the direction is 

27 left, otherwise if Direct=1 , the direction is right. Note ED is xor*d with the initial value of 

28 Direct. This results is a reversal of the direction or rotation when ED=1 and compared to 

29 when ED=0 . LRD=ABS(RD) MOD W*8, were LRD is the Local Rotate Distance while 

30 JD=integer of (LRD/8). JD, Jump Distance, is the number of bytes to be jumped from the 

31 present location and is where the output of the local byte will reside as a result of the 



-20- 



1 rotation. RS=LRD MOD 8, is the residual shift value or the distance within a byte that 

2 needs to be shifted. SF1 and SF2 are values which are used to compute the shifted bit 

3 patterns and will be described in more detail below. These variables are defined as 

4 follows: SF1=2 RS while SF2= 8 " RS . The variable i is local variable used as a loop counter. 

5 From step 8-1 we proceed to step 8-2. At step 8-2 if ENB=0, the rotate operation is 

6 disabled and we proceed to step 8-1 1 , where the W bytes are copied (unchanged) from X 

7 to Y. Then from step 8-9 we proceed to step 8-1 0 to exit. Now, if at step 8-2, ENB=1 , we 

8 proceed to step 8-3. Here if RD=0 is true, we proceed again to step 8-1 1 , otherwise we 

9 proceed to step 8-4. At Step 8-4, BV=X(i), where BV is the value of the ith byte in X. Next 

10 at step 8-5, the direction flag is tested. If Direct=1 is false (left rotate), then we go to step 
n 8-6. At step 8-6, several pointers and variable are computed. PBS^Previous Byte 

12 Pointer) is computed to point to the byte to the right of the present on pointed to by i. VPB 

13 is the Value of the Previous Byte. F1 is equal to the bits being shifted left from the 

14 previous byte to the present byte, while F2 is equal to the bytes remaining in the present 

15 byte after it is shifted left. OBP is the Output Byte Pointer and designates where the 

16 resulting new byte value will be placed. From step 8-6 we proceed to step 8-8 where 

n Y(OBP)=F1 +F2. Additionally the variable i is incremented by 1 at step 8-8. From 8-8 we 

18 proceed to step 8-9 where i is compared to W. If i > W is true, we proceed to step 8-1 0 to 

19 exit, otherwise we go back to step 8-4 to continue processing additional bytes. If at step 

20 8-5, Direct=1 is true, then we have a right rotate and proceed to step 8-7 instead of step 

21 8-6. At step 8-7, several variable and pointers are computed. PNB, Pointer to Next Byte, 

22 is compute to point to the byte to the logical right of the present byte designate by i. VNB 

23 is the value of the byte pointed to by PNB. F1 is a variable containing the bits remaining 

24 in the lower end of the VNB after shifting right. F2 is a variable containing the bits in the 

25 present byte which are shifted right into the next byte. Again OBP is a pointer indicating 

26 where the resultant new byte will be placed in Y. From step 8-7 we again proceed to step 

27 8-8 where the output byte Y(OBP) is created by summing F1 +F2. And as from before i is 

28 incremented and we proceed to step 8-9. 

29 FIG. 9 is a flowchart of the arithmetic/logic operations. At step 9-1 , Y is the output 

30 array or string, X1 is the input array or string, X2 is W bytes from a masking array, AV is a 

31 3 bit value designating the A/L operation to be performed, W designated the number of 
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1 bytes to be processed and ED is a 1 bit flag. ED is set 0 for encryption, and set equal to 1 

2 for decryption. From step 9-1 we proceed to step 9-2. At 9-2, WAV is set equal to AV 

3 XOR (3 *ED). Hence when ED=0, WAV=AV and when ED=1 , WAV=AV with the lower 2 

4 bits complemented. At step 9-3 the value of WAV is checked. If WAV >=4 is true, then 

5 we go to step 9-4 to perform a non base 2 computation. At step 9-4, if WAV AND 1 = 0 is 

6 true then Y=XOR+(X1 , X2) at step 9-6, otherwise we proceed to step 9-5 and set Y= XOR- 

7 (X1 , X2). From either step 9-5 or step 9-6 we proceed to step 9-7 to exit. At Step 9-5 or 

8 9-6, AVON and AVMN represent the number bases which are to be used when converting 

9 the data, X1 , and mask, X2, elements into digits to be combined using either XOR+ , step 

10 9-6, or XOR- step 9-5, operations. If at step 9-3 WAV>=4 was false, then we have binary 

1 1 operations and proceed to step 9-8. If at step 9-8, if the test WAV=1 is true then we 

12 procees to step 9-9 where Y=X1 +X2 and then to step 9-7 to exit. If at step 9-8 the test 

13 was false, then we proceed to step 9-10 and if the test WAV=2 is true we proceed to step 

14 9-1 1 where Y=X1 -X2 and again then to step 9-7 to exit. If the test at step 9-1 0 was false, 
is we proceed to step 9-12 where Y=X1 XOR X2 and then finally to step 9-7 to exit. 

16 FIG. 10 is a flowchart of the steps used to update the bytes in a mask array or 

17 string. Steps 1 0-1 through 10-4 are used to create a string or array of W bytes in TEMP 

18 which will be used to update the lower W bytes of mask array M(i). Similarly, Steps 10-5 

19 through 10-7 are used to modify the mask array M(i) prior to its being updated by TEMP. 

20 While steps 10-8 through 10-12 are those concerned with the modification of M(i) by 

21 TEMP. 

22 At Step 10-1 , W bytes from the source/pointer MUP(i) are copied to the string or 

23 array TEMP. At step 10-2, the binary flag MURSF, Mask Update Rotate/Source Flag, is 

24 tested to see if it's value is equal to zero. If this condition is true, the next step used is 

25 step 10-3 designating a rotate of TEMP, otherwise, step 10-4 is used which specifies a 

26 shuffle of the bytes in TEMP. At Step 10-3, the binary bits in the W bytes in TEMP are 

27 rotated by the distance specified by the variable MURV(i). While at step 10-4, W bytes 

28 from the source/pointer MUVARP(i) are copied to V. Where V is a string or array, W 

29 bytes long, of arbitrary bytes which is used in the computation of addressing for the 

30 shuffle operation. Similarly, MUofM and MUoff2 are also used in the computations of the 
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1 shuffle operation. At the completion of either step 1 0-3 or step 1 0-4, TEMP contains W 

2 bytes which are used to update the lower W bytes of M(i) as described below. 

3 At Step 1 0-5 the binary flag MRSF, Mask Rotate/Shuffle Flag, is tested to see if it's 

4 value is equal to zero. If this condition is true, the next step used is step 10-6 which 

5 designates a binary rotation of the ML(i) bytes of M(i). If the test condition at step 1 0-5 is 

6 false, then we proceed to step 1 0-7 to shuffle the ML(i) byte of M(i). At step 1 0-6, MRV(i) 

7 specifies the direction and distance of the binary rotation of M(i). At step 1 0-7, W bytes 

8 form the source/pointer MVARP(i) are copied to V. Then the ML(i) byte of mask M(i) are 

9 shuffled using V, Moffl and Moff2 during the computation of the shuffling indexes. After 

10 the completion of either step 1 0-6 or step 1 0-7 we proceed to step 1 0-8. Here, at step 1 0- 

1 1 8, we test the value of MAV(i). If MAV(i)=1 is true we proceed to step 1 0-0, otherwise to 

12 step 1 0-9 to continue examining the value of MAV(i). At step 1 0-9 if MAV(i)=2 is true we 
n proceed to step 10-11, otherwise we proceed to step 1 0-1 2. At step 1 0-1 0, the lower W 

14 bytes or M(i) are modified by adding the W bytes of TEMP to them. At step 10-11, the 

15 lower W bytes of M(i) are modified by subtracting the W bytes of TEMP to them and at 

16 step 10-12, the lower W bytes of M(i) are modified by xoring the W bytes of Temp to them, 
n At the completion of steps 1 0-1 0, 1 0-1 1 or 1 0-1 2 we proceed to step 1 0-1 3 to exit. 

18 FIG. 1 1 is a flow chart of the retrieval of a value using a source and pointer. This 

19 figure shows details about the various address modes and how these mode affect the 

20 selection or updated source and pointer values. When a counter is decremented to zero, 

21 the counter value, the variable associated with that counter will both need to be updated. 

22 Associated with a counter or variable is a source, pointer and addressing mode 

23 information (see figures 2 and 3). Starting at step 1 1 -1 , we proceed to step 1 1 -2 where 

24 the address mode for the variable or counter under selection is checked. If the 

25 MODE=FIXED is true, we proceed to step 1 1 -3, otherwise we proceed to step 1 1 -5 for 

26 further mode checking. At step 11-5, if MODE=JUMP is true then we proceed to step 11-6 

27 otherwise we proceed to step 1 1 -7. If MODE=FIXED is true at step 1 1 -2, we go to step 

28 1 1 -3. Here, using the present designated source and pointer for the counter or variable 

29 being updated, NBTR (Number of Bytes To Read) bytes are retrieved from the source 

30 (see figure 1 1 A for details) and the retrieved value is placed in RV. Each counter and 

31 variable may have a maximum value associated various categories of items being 
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1 updated and if this is implemented then New VaIue=RF MOD MaxValue, where MaxValue 

2 is chosen so that it will limit the size which New Value as desired by the user. Since we 

3 are in FIXED MODE, the source and pointer values are unchanged and we proceed to 

4 step 1 1 -4 to exit. If at step 1 1 -5, the test MODE=JUMP is true, we proceed to 1 1 -6 where 

5 a new relative source number, NSN, and new pointer, NP, references are created. Each 

6 source has a relative number associated with the definition of the source (see figure 2). 

7 The returned NSN becomes the RN for the variable or counter being updated. The 

8 variable TNES is the Total Number of Enabled Sources available at the present time the 

9 pointers and sources are being updated. SL, Source Length, is the maximum length in 

10 bytes which a pointer may have for a particular source. If the addressing mode is not 

1 1 either fixed or jump mode, we go from step 1 1 -5 to step 11-7. Here, a new pointer value, 

12 NP, is created by adding NBTR to the present pointer value. Next at step 1 1-8, the value 

13 of NP is compared to the source length for source number SN. If NP <=SL(SN) then the 

14 present value of NP is used and we got to step 1 1 -3 to obtain a New Value to be used to 
is update a counter or variable, etc. If however, NP is >SL(SN), then we proceed to step 11- 
16 9 because the NP no longer points within the present source length SL(SN). How the 

n value of NP is corrected to point to a location within a source is dependent upon the 

18 addressing mode. If, at step 11-9, the condition Mode=Locai is true, meaning the pointer 

19 always stays within the same source, then we proceed to step 11-10 then the pointer 

20 value NP is corrected to fit within the present source. If at step 1 1 -9, the condition 

21 Mode=Local is false, meaning that we are in General Mode, then we need to set NP=1 

22 and RN is incremented to point to the next RN entry. 

23 FIG. 11A is a flow chart of a routine used in step 11-3 and 11-6 (FIG. 11) to obtain 

24 a value RV. At Step 1 1 A-1 , P is a byte pointer into a source, SN, where SN=SDT(RN) 

25 and NBTR is a small integer equal to the number of bytes to be retrieved from the source 

26 which will be used to form the value RV. The local counter, J, is set equal to 1 . At Step 

27 1 1 A-2, RV= a retrieved byte. At step 1 1 A-3, J is incremented by 1 . And at step 1 1 A-4, J 

28 is compared to NBTR. It J>NBTR is true, then we go to step 1 1 A-5 to exit, with RV being 

29 the final Retrieved Value. If, the condition tested was false, indicating that there are 

30 additional bytes which need to be retrieved, the we go to step 1 1 A-6. At step 1 1 A-6, the 

31 pointer P is incremented (modulo the source length) and then at step 1 1 A-7, the variable 
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1 RTV, Retrieved Temporary Value, is a byte retrieved from SN at P using the updated 

2 value of P. Assuming that we are dealing with an 8 bit byte, then the present value of RV 

3 is multiplied by 256 and then RTV is added to it to form a new value for RV. and from step 

4 1 1 A-7 we go back to step 1 1 A-3 to repeat the process. 

5 FIG. 12 is a diagram showing two processing sections, 100 and 100a, combined by 

6 having common mask elements M(1 to 3). Processing section 100 is used to control and 

7 process an initial password value, E MASK in, 1 , resulting in E MASK out, 4. Upon the 

8 completion of the processing, E MASK out, 4, is copied back via 110, and becomes a new 

9 value for E MASK in, 1 . In a similar fashion, data to be encrypted or decrypted is put in 

10 DATAin, 1a, and processing using 100a, resulting in DATAout, 4a. The processing of the 

1 1 two section is synchronized so that section 1 00a is run only after 1 00 has completed 

12 processing. The processing sections within section 100a do not update or change any of 
n the mask elements M(1 to 3). These are changed only by section 100, providing change 

14 in mask elements for processing section 1 00a. In another method, not shown, the input or 

15 output data elements from addition processing sections are used to provide information to 

16 control or modify the data being processed by section 100a. 
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